Home page logo

nanog logo nanog mailing list archives

Re: Common operational misconceptions
From: Jeff Kell <jeff-kell () utc edu>
Date: Thu, 16 Feb 2012 08:57:04 -0500

Or a security vendor, or a security publication...  the whole "top ten"
delivered as ten individual clicks with pay-per-view banner ads on each
page and a bazillion tracker cookies....  arrrrrrgh.....


On 2/16/2012 5:26 AM, Chris Campbell wrote:
This isn't so much a list of misconceptions that recent students have as a list of misconceptions that security 
management haveā€¦

On 15 Feb 2012, at 22:52, Rich Kulawiec wrote:

ICMP is evil.
Firewalls can be configured default-permit.
Firewalls can be configured unidirectionally.
Firewalls will solve our security issues.
Antivirus will solve our security issues.
IDS/IPS will solve our security issues.
Audits and checklists will solve our security issues.
Our network will never emit abuse or attacks.
Our users can be trained.
We must do something; this is something; let's do this.
We can add security later.
We're not a target.
We don't need to read our logs.
What logs?

(with apologies to Marcus Ranum, from whom I've shamelessly
cribbed several of these)


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]